Upcoming Webinar – Tools and Tactics to solve the top 3 Open-Source Intelligence Challenges Learn More +

Ransomware Rewind

Weekly Update: 17 January 2023

Ransomware Rewind is a compilation of ransomware-related stories published over the past week.

Most Active Ransomware Operators

Volume of messages posted by operators during the last week.

Significant Campaigns & Incidents

Documents and discussion of significant ransomware campaigns, incidents, and associated actors.

DNV confirms 1,000 vessels affected by cyberattackInsurance Marine News – Jan 16 2023 10:31
LockBit Tries to Distance Itself From Royal Mail AttackBankInfoSecurity – Jan 13 2023 17:09
Guardian confirms it was hit by ransomware attackThe Guardian – Jan 11 2023 16:42

Tactics & Techniques

Discussion and mentions of significant techniques deployed by threat actors.

Increasing The Sting of HIVE RansomwareRapid7 Community : Blog List Metasploit – Jan 11 2023 18:59

Researcher Analysis

Analysis, deep-dives and reverse engineering.

Profit at Any Cost: Why Ransomware Gangs Such as LockBit LieBankInfoSecurity – Jan 16 2023 16:39
Interview with Mallox ransomware groupSuspectFile – Jan 16 2023 08:09
Quarter of UK SMBs Hit by Ransomware in 2022Infosecurity Today – Jan 12 2023 10:30

Legal Actions and Discussion

Actions, consequences, and policy discussion by governments and organisations.

Decrypted: BianLian RansomwareAvast Threat Labs – Jan 16 2023 08:23
Three law firms join forces to pursue MedibankiTnews Security – Jan 16 2023 01:44
New York state adds $35 million to 2023 cybersecurity budget as attacks soarThe Record by Recorded Future – Jan 11 2023 18:41
Cracking the Chaos Ransomware Family – TruesecTruesec Blog – Jan 11 2023 13:49

The content in this report was compiled by the use of our award-winning intelligence product Silobreaker Online. Silobreaker cannot guarantee the accuracy, completeness, integrity or quality of any content in this report and no responsibility is accepted by Silobreaker in respect of such content. Readers must determine for themselves what reliance they should place on the compiled content in the report.